For the synchronization of user data, you have to create a user object in the active directory for which the appropriate replication permissions have to be set. Here, the \u201creplicate directory changes\u201d and \u201creplicate all directory changes\u201d permissions must be set. Subsequently, when setting up the active directory synchronization service in Cloud Manager, this user must be specified as an active directory user.<\/p>\n
The following steps are necessary for setting the permissions:<\/p>\n
If the VPN connection has been established successfully, you can continue with the synchronization setup in Cloud Manager. To do this, select the \u201cActive directory synchronization\u201d menu item under the \u201cUser management\u201d main menu item.<\/p>\n
Establishing a connection to your active directory<\/strong><\/p>\n Enter the required parameters for your active directory in the form view for entering connection data for your active directory.<\/p>\n Under \u201cDomains*\u201d, select the domain(s) for which user objects in your active directory are to be synchronized. Please note that only verified domains are displayed in the list of domains. If the domain you are intending to use for active directory synchronization is not listed, use the domain management<\/a> to make sure the respective domain is marked as verified<\/a>.<\/p>\n Example:<\/p>\n In your active directory, user objects are created with the UPN (User Principal Name) name.firstname@company.de. For synchronization, the domain \u201ccompany.de\u201d must be registered as a verified domain in the domain management. In Cloud Manager, synchronized user objects are assigned based on the UPN, where the associated domain must be unambiguously assigned to your organization. After you have entered all necessary data, click on the \u201cLog in\u201d button.\u00a0Your connection data will then be checked. For this, please make sure that the VPN tunnel is established between your infrastructure and that of Telekom.<\/p>\n Specifying AD<\/strong>\u00a0 containers<\/strong><\/p>\n If it has been possible to successfully establish a connection to your active directory, a display of your AD directory structure will be added to the editing form. In the display of the directory structure, please specify the AD containers to be included in the synchronization, and then click on the button to save the settings.\u00a0After saving the settings, you will then see a status page that informs you of the completion of the active directory synchronization setup.<\/p>\n Note: On weekdays, the synchronization setup will be concluded within 24 hours. You will be informed by email when the setup has been completed. From this point on, synchronized users are displayed with the addition of \u201c[sync]\u201d in the user management, whereby only users with the parameters \u201cFirst name\u201d, \u201cLast name\u201d, \u201cDisplay name\u201d, and \u201cLogin name\u201d (User Principal Name) are synchronized.<\/p>\n Synchronizing users<\/strong><\/p>\n It is not possible to edit synchronized user data for synchronized users or to delete synchronized users in Cloud Manager. Synchronization proceeds unidirectionally from your active directory to the Cloud Manager platform. Thus, user data is updated exclusively in your active directory.<\/p>\n User data is currently synchronized once daily. The time of synchronization is determined automatically. Please contact the Service Desk<\/a> if you require a specific synchronization time.<\/p>\n The full functional scope of Cloud Manager is available to you for all other administrative tasks, such as the assignment of products, saving as a group, or resetting Passwords.<\/p>\n Passwords for synchronized users<\/strong><\/p>\n Each synchronized user is still assigned a randomly generated password when initially created. The user management<\/a> gives you the option of exporting a complete password list for synchronized users and making it available to the users in your organization. To do this, use the \u201cExport list\u201d function in the user list and then select the option \u201cPassword list\u201d.<\/p>\n Please note that entries in the password list are only included until the user\u2019s password has been changed.<\/p>\n","protected":false},"excerpt":{"rendered":" For the synchronization of user data, you have to create a user object in the active directory for which the appropriate replication permissions have to be set. Here, the \u201creplicate directory changes\u201d and \u201creplicate all directory changes\u201d permissions must be set. Subsequently, when setting up the active directory synchronization service in Cloud Manager, this user… read more »<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"parent":400,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"_links":{"self":[{"href":"https:\/\/help.telekom-cloudcenter.de\/index.php\/wp-json\/wp\/v2\/pages\/404"}],"collection":[{"href":"https:\/\/help.telekom-cloudcenter.de\/index.php\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/help.telekom-cloudcenter.de\/index.php\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/help.telekom-cloudcenter.de\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/help.telekom-cloudcenter.de\/index.php\/wp-json\/wp\/v2\/comments?post=404"}],"version-history":[{"count":8,"href":"https:\/\/help.telekom-cloudcenter.de\/index.php\/wp-json\/wp\/v2\/pages\/404\/revisions"}],"predecessor-version":[{"id":1835,"href":"https:\/\/help.telekom-cloudcenter.de\/index.php\/wp-json\/wp\/v2\/pages\/404\/revisions\/1835"}],"up":[{"embeddable":true,"href":"https:\/\/help.telekom-cloudcenter.de\/index.php\/wp-json\/wp\/v2\/pages\/400"}],"wp:attachment":[{"href":"https:\/\/help.telekom-cloudcenter.de\/index.php\/wp-json\/wp\/v2\/media?parent=404"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\n
\n
\n